Ace CandelarioA Guide to make your own Serverless Blind XSS and Blind OOB payloadIn this article, I will share how I set up my Blind XSS and Blind OOB payloads using the XLess tool by Mazin Ahmed. All is Free unless you…2 min read·Nov 5, 2020----
Ace CandelarioAPI secret key Leakage leads to disclosure of Employee’s InformationWednesday afternoon after watching Nahamsec with Th3G3nt3lman. I came up in my mind if I can find some sensitive stuff, and after some…3 min read·Mar 13, 2020--4--4
Ace CandelarioHow Spreaker leaks some of your Personal InformationSeven months ago, I submitted a Bruteforce / Rate Limit issue to Spreaker, which allows me to leak a mass user’s Full Name, Location…2 min read·Jan 23, 2020--1--1
Ace CandelarioA Noob Guide to setup your Own OOB DNS ServerAfter a few research about on how to set up my own Out-Of-Band DNS Server, I found out that it is too much complicated to set it up. But…3 min read·Jan 1, 2020----
Ace CandelarioWhy I Never Participated In Bugcrowd PlatformThis blog post is not about destroying Bugcrowd’s reputation. As a matter of fact, guys behind here are very friendly (shout out to Jason…3 min read·Mar 19, 2019----
Ace CandelarioHow I Registered Multiple Accounts in PrivateInternetAccess VPN Service for FREESummary PIA ( Private Internet Access ) is a personal virtual private network service. It supports multiple VPN technologies PPTP, L2Tp/…3 min read·Feb 20, 2019--1--1